Create an additional Certificate Authority on the secondary Smoothwall Filter and Firewall
Prerequisites
- Creating a tunnel to link the master Smoothwall to the secondary Smoothwall Filter and Firewall.
- Create the primary site-to-site link.
Procedure
- On the secondary system, on the NETWORK menu, under the VPN submenu, click Certificate authorities.
- Create a new local Certificate Authority.
- Create a new signed certificate for the secondary Smoothwall Filter and Firewall (this is used as the second local certificate of the secondary Smoothwall Filer and Firewall.
- Create a new signed certificate for any host whose VPN connectivity is managed by the secondary Smoothwall.
- Create a site-to-site or road warrior tunnel specification and choose the second signed certificate (created by the previous step) as the Local certificate.
- Export the local Certificate Authority and signed certificate created by step 4 to any host whose VPN connectivity is managed by the secondary Smoothwall.
- Create the remote tunnel specification (this could be a road warrior device or another site-to-site gateway).